Merge pull request #9888 from userdehghani/patch-26

Update missing smtp ports
patch-2
Ritik Chaddha 2024-05-27 11:55:40 +05:30 committed by GitHub
commit 811d56910d
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
4 changed files with 12 additions and 12 deletions

View File

@ -2,12 +2,12 @@ id: expn-mail-detect
info:
name: EXPN Mail Server Detect
author: r3dg33k
author: r3dg33k,userdehghani
severity: info
description: |
The "EXPN" can be used by attackers to learn about valid usernames on the target system. On some SMTP servers, EXPN can be used to show the subscribers of a mailing list subscription lists are generally considered to be sensitive information.
metadata:
max-request: 1
max-request: 4
tags: mail,expn,network,detect,smtp
tcp:
@ -18,7 +18,7 @@ tcp:
host:
- "{{Hostname}}"
port: 25
port: 25,2525,465,587
matchers:
- type: word

View File

@ -2,12 +2,12 @@ id: starttls-mail-detect
info:
name: STARTTLS Mail Server Detection
author: r3dg33k
author: r3dg33k,userdehghani
severity: info
description: |
STARTTLS is an email protocol command that tells an email server that an email client, including an email client running in a web browser, wants to turn an existing insecure connection into a secure one.
metadata:
max-request: 1
max-request: 4
tags: mail,starttls,network,detect,smtp
tcp:
@ -18,7 +18,7 @@ tcp:
host:
- "{{Hostname}}"
port: 25
port: 25,2525,465,587
matchers:
- type: word

View File

@ -2,14 +2,14 @@ id: smtp-commands-enum
info:
name: SMTP Commands Enumeration
author: pussycat0x
author: pussycat0x,userdehghani
severity: info
description: |
Attempts to use EHLO and HELP to gather the Extended commands supported by an SMTP server.
reference:
- https://nmap.org/nsedoc/scripts/smtp-commands.html
metadata:
max-request: 1
max-request: 4
shodan-query: smtp
verified: true
tags: network,enum,smtp,mail
@ -23,7 +23,7 @@ tcp:
host:
- "{{Hostname}}"
port: 25
port: 25,2525,465,587
matchers:
- type: word

View File

@ -2,14 +2,14 @@ id: smtp-user-enum
info:
name: SMTP User Enumeration
author: pussycat0x
author: pussycat0x,userdehghani
severity: medium
description: |
enumerate the users on a SMTP server by issuing the VRFY/EXPN commands
reference:
- https://nmap.org/nsedoc/scripts/smtp-enum-users.html
metadata:
max-request: 1
max-request: 4
shodan-query: smtp
verified: true
tags: network,enum,smtp,mail
@ -23,7 +23,7 @@ tcp:
host:
- "{{Hostname}}"
port: 25
port: 25,2525,465,587
attack: batteringram
payloads: